trailofbits/twa

Support more Cross-Origin headers

woodruffw opened this issue · 2 comments

There are at least two more security relevant headers that we should test for and produce judgements on:

  • Cross-Origin-Opener-Policy
  • Cross-Origin-Embedder-Policy

More resources:

Hello, @woodruffw
I would be interested in picking up this task.